diff options
| author | Matthias Andree <matthias.andree@gmx.de> | 2021-08-26 23:53:14 +0200 |
|---|---|---|
| committer | Matthias Andree <matthias.andree@gmx.de> | 2021-08-26 23:53:28 +0200 |
| commit | 3837f0e2e42b43c69b46d240adcbbe3a2c68ce95 (patch) | |
| tree | a83643f757e6e4fe856af188ec2b22e60fde8e21 /imap.c | |
| parent | bb220dc184b0b680ed21e0500766046fa8244987 (diff) | |
| download | fetchmail-3837f0e2e42b43c69b46d240adcbbe3a2c68ce95.tar.gz fetchmail-3837f0e2e42b43c69b46d240adcbbe3a2c68ce95.tar.bz2 fetchmail-3837f0e2e42b43c69b46d240adcbbe3a2c68ce95.zip | |
SECURITY: imap.c, pop3.c: STARTTLS drops state
We need to lose all state after STARTTLS to safeguard
from attacks against the clear-text part of the session.
Diffstat (limited to 'imap.c')
| -rw-r--r-- | imap.c | 15 |
1 files changed, 15 insertions, 0 deletions
@@ -38,6 +38,16 @@ static int imap_version = IMAP4; static flag do_idle = FALSE, has_idle = FALSE; static int expunge_period = 1; +static void clear_sessiondata(void) { + /* must match defaults above */ + preauth = FALSE; + memset(capabilities, 0, sizeof(capabilities)); + imap_version = IMAP4; + do_idle = FALSE; + has_idle = FALSE; + expunge_period = 1; +} + /* the next ones need to be kept in synch - C89 does not consider strlen() * a const initializer */ const char *const capa_begin = " [CAPABILITY "; const unsigned capa_len = 13; @@ -455,6 +465,8 @@ static int imap_getauth(int sock, struct query *ctl, char *greeting) int ok = 0; char *commonname, *cp; + clear_sessiondata(); + /* * Assumption: expunges are cheap, so we want to do them * after every message unless user said otherwise. @@ -518,8 +530,11 @@ static int imap_getauth(int sock, struct query *ctl, char *greeting) * Now that we're confident in our TLS connection we can * guarantee a secure capability re-probe. */ + clear_sessiondata(); if ((ok = capa_probe(sock, ctl))) + { return ok; + } } else if (must_starttls(ctl)) { /* Config required TLS but we couldn't guarantee it, so we must * stop. */ |